Overview

overview

7

Static

static

3

b753a1f0a4...69.exe

windows7-x64

7

b753a1f0a4...69.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    106s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-05-2023 07:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe

  • Size

    1.7MB

  • MD5

    c2e1be0ef38f245dab481c10696a6770

  • SHA1

    e4e667f4b694d368dd95d4335ce311211ac4094d

  • SHA256

    b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369

  • SHA512

    de6bc1420bdfbd04f60b95378b10e308c495914381e984e6607a8b727fe61011cf374af9a94b055ac61e6bfd436d7f9402f3b35ad7e83066aea5fa5f0197f4c4

  • SSDEEP

    24576:kcwK+IYtESTGeW49g/BzQVtlpK4buctpDPXPB3VbTPiaAYYarZxi/G3v:kJ48Vs4bBFPXZ3RTPirar08

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe
    "C:\Users\Admin\AppData\Local\Temp\b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\bass.dll
    Filesize

    103KB

    MD5

    8005750ec63eb5292884ad6183ae2e77

    SHA1

    c83e31655e271cd9ef5bff62b10f8d51eb3ebf29

    SHA256

    df9f56c4da160101567b0526845228ee481ee7d2f98391696fa27fe41f8acf15

    SHA512

    febbc6374e9a5c7c9029ccbff2c0ecf448d76927c8d720a4eae513b345d2a3f6de8cf774ae40dcd335af59537666e83ce994ec0adc8b9e8ab4575415e3c3e206

    Download Submit

  • memory/2372-137-0x0000000011000000-0x000000001104C000-memory.dmp

    Filesize

    304KB

    Download

  • memory/2372-138-0x0000000011000000-0x000000001104C000-memory.dmp

    Filesize

    304KB

    Download